Hello Guys,
We have a deny all policy,based on internal customer requests ports are opened for applications from trust to untrust and in some cases to specific destination IPs sourcing our internal subnet, the issue is attempts to open additional ports no longer work using the same configuration which worked previously.